Windows Server How ToYour Windows Server Knowledge Base

Some time ago i got non delivery record (NDR) mail message stating that my mail  could not be delivered to recipient X which resides in domain Y. You`ll say it is daily stuff… but the main problem is that i have never send this message by myself. Someone used my mail address to spam others. This is big threat to me and my company because it affects people`s confidence in me and my company`s reliability. What can we do about it you`ll ask ?

We can use help of Sender Policy Framework (SPF) which stands for open standart specifying a technical method to prevent sender address forgery. SPF allows the owner of a domain to specify their mail sending policy, for example which mail servers they use to send mail from their domain. To make it work we need that both sides were configured in right way. Domain owner must publish mail sending servers in SPF record and place this record in DNS server within his DNS zone.  Mail receiving server must enforce these policies vis SPF record check function.

Lets leave theory alone and try to generate SPF record for your domain.

For that first of all follow this wizard which will guide you through SPF record creation.

After you have SPF record generated and if your Windows server 2003 hosts yourdomain.com zone open DNS management snap in, navigate to yourdomain.com zone and choose to add “Other new Records…”. Select Text (TXT) record type and press “Create Record…” button. Copy data you generated earlier using wizard and paste it to “Text” textbox.  Click OK button and you are done.

Note, if you dont control your domain zone then contact your ISP and ask him to add SPF record for you.

Follow us on Twitter !